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MULTI-UNIT BUILDING WITH 
SECURE ENTRY SYSTEM 

Cross Reference to Related Applications 

Tliis patent application claims priority from a Japanese patent application, 2001-109776 filed 
on April 9, 2001, the contents of which are incorporated herein by reference. 

Background of Invention 
Field of the Invention 

I'JOOOl] The present invention relates to security for a collective building, i.e., a multi-unit building. 
More particularly, the present invention relates to a collective building having a high-security 
computer network system configured therein with an administration server for administrating 
entry to multiple units in the building and to the computer network system for ensuring 
security therein. 

Description of the Related Art 

[0002] An apartment house administration system has been developed in which a LAN (local area 
network) is configured by installing a line concentrator, such as a router or a hub, in the 
apartment house. According to the conventional apartment house administration system, each 
dwelling unit is made secure against other dwelling units in the apartment house and against 
the outside of the LAN by administrating the line concentrator provided in the apartment house 
by means of an administration server connected thereto via the Internet. 

[0003] However, according to the conventional apartment house administration system, it is hard 
to keep the LAN secure against outsiders because the LAN is administrated by the 
administration server connected to the LAN through the Internet. Moreover, it is difficult for the 
administration server connected to the LAN through the Internet to maintain detailed 
administration of network devices used in the respective dwelling units. 
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Summary of Invention 

[0004] Therefore, it is an object of the present invention to provide a secure entry system for 

multi-unit building and a multi-unit building with secure entry system, which are capable of 
overcoming the above drawbacks accompanying the conventional art. The above and other 
objects can be achieved by combinations described in the independent claims. The dependent 
claims define further advantageous and exemplary combinations of the present invention. 

[0005] According to the first aspect of the present invention, a secure entry system for a building 
having a plurality of units provided therein, each of the units permitting only entry of a 
designated person thereto, the system comprising: an administration server, which is provided 
in said building, operable to administrate a computer network system in the building; and at 
least one interconnecting device operable to connect the administration server and respective 

Q network devices in the plurality of units, wherein the administration server sets the 

tia. 

Jjj! interconnecting device to assign a plurality of VLANs to each of the units, respectively, in such a 
03 manner that a VLAN assigned to one of the units is different from VLANs assigned to respective 

rlj 

Others of the units to provide secure entry to the units and the computer network system in the 
building. 

[0|)O6] The secure entry system may further comprise a user certifying unit operable to obtain 
J; identifying information of a person trying to enter one of the units in the building from the 
yl person to certify whether or not the person is a designated person based on the identifying 

information and to permit only the designated person to enter one of the units in the building. 

[0007] The administration server may administrate an entry of a user of each of the units to each 
of the units and an entry of one of the respective network devices by the user to the computer 
network system. 

[0008] The administration server may assign closed-space identifying information to each of the 
plurality of units, the closed-space identifying information being information for identifying a 
corresponding one of the plurality of units, and each of the plurality of units permits the user 
having the closed-space identifying information assigned to each of the units to enter the 
corresponding one of each of the plurality of units. 

[0009] 

The administration server may assign VLAN identifying information to each of the VLANs 
respectively assigned to the plurality of units, the VLAN identifying information being 
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information for identifying a corresponding one of the VLANs, and the administration server 
permits one of the network devices that sent the VLAN identifying information assigned to one 
of the VLANs identified by the sent VLAN identifying information, to enter the computer 
network system. 

[001 0] The administration server may store a history of the entry of the user of each of the units to 
each of the units and a history of the entry of one of the network devices by the user to the 
computer network system. 

[001 1] The administration server may assign the plurality of VLANs to the units, respectively, to be 
different from a further VLAN assigned to the administration server. . 

[001 2] The administration server may assign further VLAN, which is assigned to the administration 
server, to the interconnecting device. 

[81)1 3] The administration server may obtain at least one of a communication amount and a 

CO 

m communication time period for each connection port of the interconnecting device, and 

controls communication at each connection port of the interconnecting device based on at least 
fll one of the communication amount and the communication time period. 

[p014] The secure entry system may further comprise an entrance server operable to administrate 
flj an entry of each of the network devices in the plurality of units to the computer network 
Z!. system. 

u - 

[001 5] The entrance server may have an entrance database operable to store device identifying 

information for identifying each of the network devices, and permits a corresponding one of the 
network devices that has the device identifying information stored in the entrance database to 
enter the computer network system. 

[001 6] The entrance database may store a MAC address of each of the network devices as the 

device identifying information, and the entrance server permits one of the network devices that 
has the MAC address stored in the entrance database to enter the computer network system. 

[001 7J The secure entry system may further comprise a DHCP server operable to assign, in a case 
where it is determined that the MAC address of one of the network devices is stored in the 
entrance database, an IP address to one of the network devices. 
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[001 8] The entrance server may have an entrance database operable to store user identifying 

information for identifying a corresponding user of each of the networl< devices, and permits a 
corresponding one of the network devices that sent the user identifying information stored in 
the entrance database to enter the computer network system. 

[001 9] The administration server may assign, to the entrance server, a VLAN that allows the 
entrance server to communicate with the plurality of VLANs respectively assigned to the 
plurality of units. 

[0020] The secure entry system may further comprise a shared server operable to give a plurality 
of the network devices common information that is common thereto, each of the plurality of 
units having therein at least one of the plurality of network devices. 

[C!P21] The administration server may assign, to the shared server, a VLAN that allows the shared 
server to communicate with the plurality of VLANs respectively assigned to the plurality of 
units. 

[Sp22] The secure entry system may further comprise a DHCP server operable to assign an IP 
?W address to each of the respective network devices in the plurality of units. 

fS 

H I' 

[0023] The administration server may assign, to the DHCP server, a VLAN that allows the DHCP 

iU server to communicate with the plurality of VLANs respectively assigned to the plurality of 

y] 

ri units. 

[0024] Each of the units may include an abnormal-state detecting unit operable to detect an 
abnormal state in a corresponding one of each of the units and to notify the administration 
server of a detection thereof, the abnormal-state detecting unit being connected to a 
connection port of the interconnecting device other than a connection port to which one of the 
network devices is connected. 

[0025] 

According to the second aspect of the present invention, a multi-unit building having a 
secure entry system for a plurality of closed spaces provided therein, each of the closed spaces 
limiting access thereto to an insider of the closed space, the building comprising: an 
administration server that administrates a computer network system in the building; and an 
interconnecting device that conneas the administration server and a plurality of network 
devices in the plurality of closed spaces, wherein each of the plurality of closed spaces has a 
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corresponding VLAN assigned thereto based upon the administration server setting the 
interconnecting device such that each VLAN assigned to the plurality of closed spaces is 
different from respective other VLANs assigned to others of the closed spaces; and the 
administration server limits access to each of the plurality of closed spaces and the computer 
network system in the building to a designated insider. 

[0026] The summary of the invention does not necessarily describe all necessary features of the 
present invention. The present invention may also be a sub-combination of the features 
described above. The above and other features and advantages of the present invention will 
become more apparent from the following description of the embodiments taken in conjunction 
with the accompanying drawings. 

Brief Description of Drawings 

H 5 

[4h27] Fig. 1 shows a structure of a collective building according to an embodiment of the present 

[p invention. 

i0028] Fig. 2 shows an exemplary data format of an administration information file stored in an 

fil 

ry administration database. 

|pb29] Fig. 3 shows a structure of a computer network system configured in the collective building 

PI according to the embodiment of the present invention. 

|S5b30] Fig. 4 shows an exemplary data format of an entrance file stored in an entrance database. 
[0031] Fig. 5 is a flowchart of an MAC address registration operation. 
[0032] Fig. 6 is a flowchart of an MAC address verifying operation. 

Detailed Description 

[0033] The invention will now be described based on the preferred embodiments, which do not 
intend to limit the scope of the present invention, but exemplify the invention. All of the 
features and the combinations thereof described in the embodiment are not necessarily 
essential to the invention. 

[0034] 

Fig. 1 shows a structure of a collective building 200 according to an embodiment of the 
present invention. The collective building 200 of the present embodiment is provided with a 
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plurality of closed spaces or units 20 each of which only is accessible by an insider, that is, a 
designated person who belongs thereto. The collective building 200 includes an administration 
server 1 0 that generally administrates a computer network system 1 20 of the collective building 
200 and one or more interconnecting devices 1 2 for connecting the administration server 1 0 to 
at least one network device 24 used in a corresponding closed space 20. 

[0035] The collective building 200 further includes a router 1 6 that can connect the computer 

network system 1 20 of the collective building 200 to the Internet. The network device 24 can 
use the Internet via the router 1 6. An administration apparatus provided on the Internet may 
administrate the administration server 10 and an administration database 14. 

[0036] The administration server 1 0 performs the setting of each interconnecting device 1 2 so as 
to assign respective, different VLANs (virtual local area networks) to the closed spaces 20. Each 

Q 

bp closed space 20 includes a user certifying unit 22 that certifies a user who tries to enter the 

closed space 20. The closed space 20 may also include a line concentrator 26, such as a router 

ill or a hub, and a plurality of network devices 24 connected to the line concentrator 26 in the 
closed space 20 may be connected to the computer network system 1 20. 

~Ei i 

10037] The administration server 10 assigns, to each of the closed spaces 20, closed-space 

Ci identifying information for identifying the corresponding closed space 20. The administration 

r^l server 1 0 also assigns VLAN identifying information that identifies the VLAN to each of the 

m 

p VLANs respectively assigned to the closed spaces 20. Moreover, the administration server 1 0 
has the administration database 1 4 that stores, for each of the closed spaces 20, the closed- 
space identifying information and the VLAN identifying information so as to correspond to the 
associated closed space 20. 

[0038] The administration server 1 0 administrates the entry of the user of the closed space 20 to 
the closed space 20 and the entry of the network device 24 to the computer network system 
120 by the user. The user certifying unit 22 certifies the closed-space identifying information 
of the user based on data stored in the administration database 14, so as to only allow the user 
having the closed-space identifying information of the corresponding closed space 20, i.e., a 
designated user, to enter the corresponding closed space 20. 

[0039] 

The administration server 10 certifies the VLAN identifying information sent from the 
network device 24 in each closed space 20 based on data stored in the administration database 
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14, and only allows the network device 24 that sends the VLAN identifying information 
specifying the VLAN assigned to that closed space 20, i.e., a designated user, to enter the 
computer network system 1 20. 

[0040] The administration server 1 0 may store a history of the entry of the user of the closed 

space 20 to that closed space 20 and a history of the entry of the network device 24 by the user 
to the computer network system 120. In this case, the administration server 10 can detect 
improper entry to each of the closed spaces 20 and improper entry to the computer network 
system 1 20. 

[0041] Each closed space 20 may include an abnormal-state detecting unit 28 that can detect an 
abnormal state, such as a fire, gas leakage occurring in the closed space 20, or the like. The 
abnormal-state detecting unit 28 is connected to the administration server 10 via the 
7n interconnecting device 1 2 so as to notify the administration server 1 0 of a detected abnormal 
S='- state. The administration server 1 0 notifies the administrator of the building 200, a security- 

m 

ry service company or the like, of the occurrence of the abnormal state. It is preferable that the 

!:! abnormal-state detecting unit 28 is connected to a connection port of the interconnecting 

[|J device 1 2 other than the connection port thereof to which the network device 24 in the 

^r;-, corresponding closed space 20 is connected. In this case, it is possible to prevent a wrong 
"^H operation of the abnormal-state detecting unit 28 from being caused by a wrong operation of 
the network device 24. 

f0O42] The user certifying unit 22 may obtain, from a person trying to enter the corresponding 
closed space 20, identifying information of the person so as to determine whether or not the 
person is an insider of the corresponding closed space 20 based on the obtained identifying 
information, thereby permitting only the entry of the insider of the corresponding closed space 
20 to the closed space 20. The user certifying unit 22 may be a device such as a lock provided 
on an entrance of the closed space 20 while the closed-space identifying information may be a 
corresponding, unique shape of a key for opening/closing the lock. The lock may certify or 
verify the shape of the key presented by the user of the closed space 20 so as to allow, in a 
case where the shape of the key is successfully certified, the user having the certified key to 
enter the closed space 20. 

[0043] administration server 10 may be provided in an administration-closed space (not 

shown), for example, a room for a janitor of the colleaive building 200. The administration- 
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closed space may include a user certifying unit 22 that certifies a user who tries to enter the 
administration-closed space, and the administration server 10 may limit entry to the 
administration-closed space based on data previously stored in the administration database 14. 

[0044] According to the collective building 200 of the present embodiment, high security can be 
realized against improper entry by unauthorized persons to the computer network system 1 20 
by limiting the entry of a user to the closed space 20 and limiting the entry of a network device 
24 to the computer network system 200. 



m 
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[0045] Fig. 2 shows an exemplary data format of an administration information file stored in the 
administration database 14. The administration information file includes fields of closed space, 
closed-space identifying information and VLAN identifying information. The closed space field 
stores information for identifying a corresponding closed space 20. The closed-space 
identifying information field is assigned to each closed space 20 and stores the closed-space 
identifying information for certifying a user of the corresponding closed space 20. The VLAN 
identifying information field is assigned to each VLAN in the closed space 20 and stores the 
VLAN identifying information for certifying a user of the corresponding VLAN. Based on data 
stored in the administration database 14, the administration server 10 administrates the entry 
of the user of the closed space 20 to the closed space 20 and the entry of the network device 
24 by the user to the computer network system 1 20. 

,b46] Fig. 3 illustrates a structure of a computer network system 1 20 of the collective building 

200 according to the present embodiment. The computer network system 1 20 of the collective 
building 200 includes an entrance server 30 that administrates access of the network devices 
24 used in the closed spaces -20 to the computer network system 1 20; a DHCP (Dynamic Host 
Configuration Protocol) server 40 that assigns an IP address to each of the network devices 24 
used in the closed spaces 20; and a shared server 50 that can give the network devices 24 used 
in each of the closed spaces 20 information common thereto. 

[0047] The administration server 10 assigns an administration VLAN 100 to the administration 

server 1 0. The administration server 1 0 also assigns the same administration VLAN 1 00 as that 
assigned to the administration server 1 0 to the interconnecting devices 1 2. Thus, the 
administration server 10 manages the interconnecting devices 12 in the administration VLAN 
100 and can perform the VLAN settings in the connection ports of the interconnecting devices 
12. 
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[0048] The administration server 1 0 assigns individual VLANs 11 Oa, 1 1 Ob, 11 Oc and 1 1 Od that are 
different from the administration VLAN 1 00 to the network devices 24 in a plurality of closed 
spaces 20 in such a manner that a VLAN assigned to each closed space 20 is different from the 
respective VLANs assigned to other closed spaces 20. Thus, the administration server 10 
cannot communicate with the network devices 24 used in the closed spaces 20. Also, the 
network device 24 used in a certain closed space 20 cannot communicate with another network 
device 24 used in another closed space 20. Moreover, the administration server 10 assigns to 
the entrance server 30, the DHCP server 40 and the shared server 50 a general VLAN 1 20 that 
allows the servers 30, 40 and 50 to communicate with the individual VLANs 11 Oa, 1 1 Ob, 1 1 Oc 
and 1 lOd respectively assigned to the closed spaces 20. 

[0049] The administration server 1 0 obtains at least one of the communication amount and the 

p communication time period for each of the connection ports of the interconnecting devices 1 2. 

JjJ Based on the at least one of the communication amount and the communication time period 

Co thus obtained, the administration server 1 0 controls the communication at the corresponding 

l^x connection port of the interconnecting devices 1 2. The administration server 10 may create 
charging information based on the at least one of the communication amount and the 

ry 

£ communication time period obtained to charge the user the communication cost. By controlling 

H the communication at each connection pQ.rt of the interconnecting devices 1 2, the 

rlJ administration server 1 0 can limit connection to the Internet by the network device 24 

in 

f'rj connected to that connection port of the interconnecting devices 1 2, or the like. 

hi 

[0050] The entrance server 30 includes an entrance database 32 that stores device identifying 

information which is information for identifying the network devices 24. The entrance database 
32 stores an MAC address as an example of the device identifying information. The entrance 
server 30 permits the entry of the network device 24 having the MAC address stored in the 
entrance database 32 to the computer network system 1 20. The user of the network device 24 
logs in the entrance server 30 by using the network device. 24, and registers the MAC address 
of the network device 24 into the entrance database 32. Alternatively, an administrator of the 
entrance server 30 may register the MAC address of the network device 24 by using the 
entrance server 30. 

[0051] 

The entrance database 32 may store the user identifying information which is information 
for identifying the user of the network device 24. Based on the user identifying information 
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stored in the entrance database 32, the entrance server 30 nnay certify or verify the user 
identifying information sent from the network device 24. Moreover, in a case where the user is 
successfully certified, the entrance server 30 may store the MAC address of the network device 
24 that sent the certified user identifying information, in the entrance database 32. The 
entrance server 30 may permit the entry of the network device 24 that sent the certified user 
identifying information, to the computer network system 120. 

[0052] The DHCP server 40 may assign an IP address to the network device 24 having the MAC 
address stored in the entrance database 32. By assigning the IP address only to the network 
device 24 registered in the entrance database 32 by means of the DHCP server 40, only the 
registered network device 24 can use the Internet through the computer network system 120. 

[0053] Fig. 4 shows an exemplary data format of an entrance file stored in the entrance database 

Q 

32. The entrance file includes fields of closed space, user ID, password and MAC address. The 
- ■ closed space field stores information for identifying corresponding closed spaces 20. The user 

ID field stores the user identifying information for identifying the corresponding user of the 
network device 24. The password field stores a corresponding password used for certifying the 
rlJ user identified by the user identifying information stored in the associated user ID field. The 

MAC address field stores the MAC address of the network device 24 used in the corresponding 

'^""■'^ closed space 20. 

fll ■ 

|0j054] The user identifying information to be stored in the user ID field and the password to be 
stored in the password field are registered in advance by the user of the network device 24 or 
by the network administrator. As the MAC address to be stored in the MAC address field, the 
MAC address received from the network device 24 is stored. The user of the network device 24 
logs in the entrance server 30 by using the network device 24 and inputs the user ID and the 
password of the user. The entrance server 30 certifies the user ID and the password thus input 
by using the user identifying information and the password stored in the user ID field and the 
password field, respectively, and thereafter stores the received MAC address of the network 
device 24 that sent the user ID and the password. 

[0055] The entrance database 32 stores the MAC address so as to correspond to the associated 

closed space 20. The entrance server 30 only permits the entry of the network device 24 having 
the MAC address that corresponds to a certain closed space 20 to the computer network 
system 120. 
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[0056] Fig. 5 is a flowchart of a MAC address registration operation. First, the entrance server 30 
receives the MAC address of the network device 24 connected to the interconnecting device 1 2 
from the interconnecting device 1 2 (Step SI 00). The entrance server 30 then receives the user 
ID and the password input by the user into the network device 24 that logs in the entrance 
server 30 (Step SI 02). Then, the entrance server 30 refers to the entrance database 32 (Step 
SI 04), so as to certify the user ID and the password received (Step SI 06). In a case where the 
user ID and the password are not certified in Step SI 06, the entrance server 30 finishes the 
MAC address registration operation. In a case where the user ID and the password are 
successfully certified in Step SI 06, the entrance server 30 registers the received MAC address 
into the entrance database 32 (Step SI 08). 

Fig. 6 is a flowchart of a MAC address verifying operation. First, the interconnecting device 
12 detects that the network device 24 connected to the interconnecting device 1 2 is turned on, 
and then notifies the entrance server 30 of the detection result (Step S200). Then, the entrance 
server 30 receives, from the interconnecting device 12, the MAC address of the network device 
24 connected to the interconnecting device 1 2 (Step S202). The entrance server 30 then refers 
to the entrance database 32 (Step S204), so as to determine whether or not the received MAC 
address is stored in the entrance database 32 (Step S206). 

In a case where the received MAC address is stored in the entrance database 32, the 
entrance server 30 permits the DHCP server 40 to assign ah IP address to the network device 24 
having the received MAC address (Step S208). The DHCP server 40 then assigns the IP address 
to the network device 24 based on the instruction from the entrance server 30. The entrance 
server 30 also permits the interconnecting device 12 to perform communication at the 
connection port of the interconnection device 1 2, to which the network device 24 having the 
received MAC address is connected (Step S210). 

In a case where the received MAC address is not stored in the entrance database 32, the 
entrance server 30 prohibits the DHCP server 40 from assigning an IP address to the network 
device 24 having the received MAC address (Step S21 2). The entrance server 30 also prohibits 
the interconnecting device 12 from performing the communication at the connection port of 
the interconnecting device 12, to which the network device 24 having the received MAC address 
is connected (Step S214). Moreover, the entrance server 30 determines that the network device 
24 having the received MAC address has attempted improper entry to the computer network 
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system 1 20. and stores the received MAC address therein (Step S21 6). The entrance server 30 
may notify the administrator of the attempted improper entry of the network device 24 to the 
computer network system 1 20. 

[0060] According to the collective building 200 of the present embodiment, by providing the 
collective building 200 with the administration server 10, the entrance server 30, the DHCP 
server 40, and the shared server 50, it is possible to perform detailed, secure administration of 
the interconnecting devices 1 2 and the network devices 24. Moreover, a secure computer 
network system can be configured in. a multi-unit building by administrating the 
interconnecting devices 12 and the network devices 24 without using the Internet. Furthermore, 
since a network device 24 that can use the computer network system according to the present 
invention is limited based on the registered MAC address of the network device 24. improper 
entry to the computer network system can be prevented. 

pbsi] As is apparent from the above, according to the present invention, a collective building 

s'a i 

fij having a computer network system with high security configured therein can be provided by 

[I'l providing the collective building with an administration server for administrating secure access 

B b -J 

fy to units in the building and to the computer network system of the building. 

[<}]062] Although the present invention has been described by way of exemplary embodiments, it 

nil should be understood that those skilled in the art might make many changes and substitutions 

^ without departing from the spirit and the scope of the present invention which is defined only 

H by the appended claims. 
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